Re: blocking ports
> 1)
> I want to block certain services for the outside world (like lpd etc) but NOT for the inside network
> I thought I could block it with ipchains -A input -p tcp -d xxx.xxx.xxx.xxx 515 -j DENY
> But if I telnet from a outside host to that port I can still connect
> Well I think thats because the INPUT policy is ACCEPT (I think change that to DENY is rather not a good idea)
> Is there another solutions for this ?
to block services from the outside world to port 515 you'd probably need
something like this
-A input -s 0/0 -d yourip 515 -j DENY
That would clip attempted connections anywhere on any port to you on port
515.
As another option I explictly allow from the network/hosts I want to have
access to it then deny from everyone else so.
-A input -s mytrustedhosts -d yourip 515 -j ACCEPT
-A input -s 0/0 -d yourip 515 -j DENY
> -------------------------------------------
>
> 2)
> #showmount -e localhost
> mount clntudp_create: RPC: Program not registered
>
> #less /etc/host.allow :
> [CUT]
> portmap: 127.0.0.1
>
> #ps -aux |grep rpc
> root 957 0.0 0.0 1128 0 ? SW May22 0:00 [rpc.rquotad]
> root 1027 0.0 0.1 1776 180 ? S May22 0:00 /usr/sbin/rpc.nfsd
> root 1030 0.0 0.0 1776 64 ? S May22 0:00 /usr/sbin/rpc.mountd
> root 12793 0.0 0.0 0 0 ? SW Jun15 0:00 [rpciod]
> root 13120 0.0 0.0 1304 0 ? SW Jul09 0:00 [rpc.ugidd]
>
is portmap running?
do you have any shares?
do an rpcinfo -p and see what it says.
-sv
Reply to: